Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Hackers Using Zero-Width Spaces to Bypass MS Office 365 Protection
#1
Quote:Security researchers have been warning about a simple technique that cybercriminals and email scammers are already being using in the wild to bypass security features of Microsoft Office 365, including Safe Links, which are originally designed to protect users from malware and phishing attacks.

Safe Links has been included by Microsoft in Office 365 as part of its ATP (Advanced Threat Protection) solution that works by replacing all URLs in an incoming email with Microsoft-owned secure URLs.

Therefore, every time users click on a link provided in an email, Safe Links first sends them to a Microsoft owned domain, where it immediately checks the original link for anything suspicious. If Microsoft's security scanners detect any malicious element, it then warns the users about it, and if not, it redirects them to the original link.

https://thehackernews.com/2019/01/phishi...paces.html

Reply


Messages In This Thread
Hackers Using Zero-Width Spaces to Bypass MS Office 365 Protection - by Mohammad.Poorya - 01-11-2019 , 10:19 AM

Possibly Related Threads…
Thread Author Replies Views Last Post
  Low-Detection Phishing Kits Increasingly Bypass MFA Mohammad.Poorya 0 900 02-04-2022 , 05:29 PM
Last Post: Mohammad.Poorya
  Hackers Can Now Bypass PIN Codes on Mastercard and Maestro Contactless Cards mrtrout 0 675 09-04-2021 , 10:36 PM
Last Post: mrtrout
  Obit Surfing Protection & Ads Removal has been blocked for your protection. mrtrout 0 677 07-16-2021 , 03:34 AM
Last Post: mrtrout
  New Bugs Could Let Hackers Bypass Spectre Attack Mitigations On Linux Systems Bjyda 0 898 03-29-2021 , 05:07 PM
Last Post: Bjyda
  VPN bypass vulnerability in Apple iOS sidemoon 0 1,455 03-26-2020 , 08:53 PM
Last Post: sidemoon

Forum Jump:


Users browsing this thread: 1 Guest(s)